Sneed-Reactivity/yara-mikesxrs/g00dv1n/Trojan.Injector.yar

15 lines
254 B
Text
Raw Normal View History

rule TrojanInjectorA
{
meta:
Description = "Trojan.Injector.vb"
ThreatLevel = "5"
strings:
$ = "KERNEO32.nll" ascii wide
$ = "CfeateFileAaocwwA" ascii wide
$ = "RGPdFileREjhsoX" ascii wide
condition:
all of them
}